Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 01.01.2024
Exécuté par Jean Jacques (administrateur) sur ACER-ASPIRE3 (Acer Aspire A315-54K) (02-01-2024 22:36:29)
Exécuté depuis C:\Users\Jean Jacques\Desktop\FRST64.exe
Profils chargés: Jean Jacques
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3803 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(ctfmon.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_405d2b89ed51239d\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_405d2b89ed51239d\igfxEM.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <14>
(explorer.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2311.21001.0_x64__8wekyb3d8bbwe\MicrosoftSecurityApp\MicrosoftSecurityApp.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <12>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Jean Jacques\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\GoogleCrashHandler64.exe
(PrintCtrl.exe ->) (ActMask Group Co.,Ltd -> ActMask Co.,Ltd - hxxp://www.all2pdf.com) C:\Windows\System32\PrintDisp.exe <2>
(services.exe ->) (ActMask Group Co., Ltd -> ActMask Co.,Ltd - hxxp://WWW.ALL2PDF.COM) C:\Windows\System32\PrintCtrl.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_405d2b89ed51239d\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_b2aff6fd6fd828e2\IntelCpHDCPSvc.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NortonLifeLock Inc. -> NortonLifelock Inc.) C:\Program Files\Norton Security\Engine\22.23.10.10\NortonSecurity.exe <2>
(services.exe ->) (NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.23.10.10\nsWscSvc.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <3>
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [PrintDisp] => C:\Windows\system32\PrintDisp.exe [609296 2022-06-29] (ActMask Group Co.,Ltd -> ActMask Co.,Ltd - hxxp://www.all2pdf.com)
HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10837528 2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\...\Policies\Explorer: [NoThumbnailCache] 0
HKLM\...\Policies\Explorer: [DisableThumbnailCache] 0
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\MRT: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restriction <==== ATTENTION
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2595344 2023-12-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [Microsoft Edge Update] => C:\Users\Jean Jacques\AppData\Local\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateCore.exe [264264 2023-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [QMxNetworkSync] => C:\Program Files\Common Files\MAGIX Services\Update Notifier\QMxNetworkSync.exe (Pas de fichier)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [Emjysoft Sauvegarde Facile] => C:\Program Files\Emjysoft\Sauvegarde-Facile\usb-tools.exe [1304280 2019-09-12] (Emjysoft -> Emjysoft)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [BingWallpaperApp] => C:\Users\Jean Jacques\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe [14045728 2023-10-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11517400 2023-11-05] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [GoogleChromeAutoLaunch_A7AE1EB99E0EA49DC89056588FB63EA2] => "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [2693920 2023-12-20] (Google LLC -> Google LLC)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [MicrosoftEdgeAutoLaunch_7DC9D029A103C53B17DFE8649BF7A3AD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854280 2023-12-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Policies\Explorer: [NoThumbnailCache] 0
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Policies\Explorer: [DisableThumbnailCache] 0
HKLM\...\Windows x64\Print Processors\ActMaskR: C:\Windows\System32\spool\prtprocs\x64\ActPrint.dll [54304 2021-10-03] (ActMask Group Co.,Ltd -> ActMask Co.,Ltd)
HKLM\...\Print\Monitors\HP E311 Status Monitor: C:\Windows\system32\hpinkstsE311LM.dll [399392 2023-10-04] (HP Inc. -> HP Inc.)
HKLM\...\Print\Monitors\PDF-XChange5: C:\Windows\system32\pxc50pm.dll [57056 2016-01-18] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\...\AppCompatFlags\Custom\creamodele.exe: [{0ac8999f-3635-4d40-a73e-6776b132ea1c}.sdb] -> Database CDIP
HKLM\Software\...\AppCompatFlags\Custom\Protectis.exe: [{0ac8999f-3635-4d40-a73e-6776b132ea1c}.sdb] -> Database CDIP
HKLM\Software\...\AppCompatFlags\InstalledSDB\{0ac8999f-3635-4d40-a73e-6776b132ea1c}: [DatabasePath] -> C:\Windows\AppPatch\CustomSDB\{0ac8999f-3635-4d40-a73e-6776b132ea1c}.sdb [2013-12-27]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.130\Installer\chrmstp.exe [2023-12-27] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\Installer\chrmstp.exe [2023-12-22] (Brave Software, Inc. -> Brave Software, Inc.)
BootExecute: autocheck autochk *
GroupPolicy: Restriction - Chrome <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {31954813-6C56-4499-A988-3D85A03C0183} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {AE3FE8FE-0ED5-4CFC-8FCF-9315C2F3AEF0} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_238_pepper.exe -check pepperplugin (Pas de fichier)
Task: {FC31C31B-7F46-4353-8F2D-08D4C9CBA35D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Pas de fichier)
Task: {508EADF0-F8B5-421F-96AF-AE61270E8950} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-08-19] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {F53E88A4-4788-4295-A58C-34066D99B27C} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-08-19] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {E47CFED4-7FBA-4C9A-BDAB-A6A37796D42B} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5550856 2023-12-14] (Microsoft Windows -> Microsoft Corporation)
Task: {E466F65A-63FE-4839-A6DE-6A6A32695FD7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-22] (Google LLC -> Google LLC)
Task: {50C88733-676E-4D8B-AF46-FDA48AC9A57A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-22] (Google LLC -> Google LLC)
Task: {BF9D33ED-4E97-44C3-9E55-C35293C12A13} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-781171050-1149277943-1776734086-1001Core => C:\Users\Jean Jacques\AppData\Local\Google\Update\GoogleUpdate.exe /c (Pas de fichier)
Task: {0BFC1540-D550-458B-99CD-3F055435081E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-781171050-1149277943-1776734086-1001UA => C:\Users\Jean Jacques\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler (Pas de fichier)
Task: {DA0D8B90-5F72-4832-ADA6-7A45BFEFAFA1} - System32\Tasks\HPCustParticipation HP DeskJet 3630 series => C:\Program Files\HP\HP DeskJet 3630 series\Bin\HPCustPartic.exe [6439584 2021-11-15] (HP Inc. -> HP Inc.)
Task: {E670198A-FEC8-48B5-9365-080F06684EEA} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-781171050-1149277943-1776734086-1001 => C:\Users\Jean Jacques\AppData\Local\Programs\Messenger\MessengerHelper.exe --lassie (Pas de fichier)
Task: {5F83880B-4B01-4F4E-A738-13C247807F16} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175440 2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA4BEF1C-5670-4256-BFE4-5D40A35CCA6F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175440 2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {481DB3EE-F61E-4979-897F-1CF312414D76} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [306624 2024-01-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {233EE053-6203-44F4-93CA-9B2E7BE42552} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [306624 2024-01-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {ABE6A7A6-9181-469F-A318-B69A170FF3D2} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169144 2023-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {B1060919-D17F-41A6-A5DE-ABAF48D3ECB2} - System32\Tasks\Microsoft\Windows\FileHistory\Microsoft.Web.Managices.Portable => C:\Windows\microsoft.net\framework\v4.0.30319\regasm.exe [58864 2022-06-25] (Microsoft Corporation -> Microsoft Corporation) -> "C:\Program Files (x86)\Common Files\DiscoverDesktop\DieegeionMail\IMGwsulavkr.dll" /unregister <==== ATTENTION
Task: {E31EE2E2-330B-4992-B423-AEDBF85F4B64} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\Jean -> Jacques\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe
Task: {27722EC3-2113-4DAF-933D-CC47C0B76437} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-781171050-1149277943-1776734086-1001Core => C:\Users\Jean Jacques\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {B5A7998F-7690-4CE9-AD16-DF0E295D6865} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-781171050-1149277943-1776734086-1001UA => C:\Users\Jean Jacques\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {FAE597F3-A453-4212-A7DA-5839A34AA5E9} - System32\Tasks\Norton 360\Norton 360 Autofix => C:\Program Files\Norton Security\Engine\22.23.10.10\SymErr.exe [379024 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {F1105BFE-9F6E-45A4-90DB-1AF20541CB3B} - System32\Tasks\Norton 360\Norton 360 Error Analyzer => C:\Program Files\Norton Security\Engine\22.23.10.10\SymErr.exe [379024 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {572141A8-D3E1-47A8-8137-99B3ED4DB841} - System32\Tasks\Norton 360\Norton 360 Error Processor => C:\Program Files\Norton Security\Engine\22.23.10.10\SymErr.exe [379024 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {0AEF3DD5-79F5-4063-A787-B70C3C735656} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.23.10.10\WSCStub.exe [646520 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {DC62BCEF-34EA-49E2-B04B-8646BC4D3A76} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {17C3D5C6-572D-4C4F-81FD-27F6440BF64B} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-781171050-1149277943-1776734086-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {03D0F53D-53FE-4F2D-9266-8610FF30D60B} - System32\Tasks\Opera scheduled Autoupdate 1659543425 => C:\Users\Jean Jacques\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {72C26F6B-EDE7-4311-BD72-9D7B1E9B10CF} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton 360\Upgrade.exe [2353000 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {C6CB2CA1-1A50-4D4B-AA4A-93E49F07BAF5} - System32\Tasks\SoftMakerUpdater => "C:\Program Files (x86)\SoftMaker FreeOffice 2021\SoftMakerUpdaterTool.exe" 1 (Pas de fichier)
Task: {EE053CF7-1037-419C-B88C-FCFEF6457CD5} - System32\Tasks\Uninstaller_SkipUac_Jean_Jacques => "C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe" /UninstallExplorer (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0bc4c280-8b53-453b-bd08-6c3f6d3a8153}: [DhcpNameServer] 192.168.252.220
Tcpip\..\Interfaces\{0bc4c280-8b53-453b-bd08-6c3f6d3a8153}\3414E44514C414F4554454: [DhcpNameServer] 1.1.1.1 208.67.222.222
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}: [DhcpNameServer] 192.168.220.2
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}\05569727F6574756474373: [DhcpNameServer] 192.168.62.119
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}\3414E44514C414F4554454: [DhcpNameServer] 172.20.0.1
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}\35F64796164756: [DhcpNameServer] 192.168.58.211
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}\C496675626F687D223332363: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}\C496675626F687D223332363: [DhcpDomain] home
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}\C496675626F687D264233414: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}\C496675626F687D264233414: [DhcpDomain] home
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}\2496D626F602D45646961675966496: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}\2496D626F602D45646961675966496: [DhcpDomain] iwibox.info
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}\759664960274271647579647022496D626F6: [DhcpNameServer] 5.135.52.178 54.37.54.178
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}\759664960274271647579647022496D626F6: [DhcpDomain] iwibox.info
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}\D43644F6E616C646723702642716E63656: [DhcpNameServer] 178.32.119.52 178.32.122.78
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}\D43644F6E616C646723702642716E63656: [DhcpDomain] hotspotwifimcdo.fr
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}\D4943425F44554B4F54374: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8db8cb91-96e1-43b9-993e-89d36691499a}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8db8cb91-96e1-43b9-993e-89d36691499a}: [DhcpDomain] home
Tcpip\..\Interfaces\{8db8cb91-96e1-43b9-993e-89d36691499a}\3414E44514C414F4554454: [DhcpNameServer] 1.1.1.1 208.67.222.222
Tcpip\..\Interfaces\{d13ee740-f628-48cd-be63-ddd430bc94b0}: [DhcpNameServer] 192.168.175.179
Tcpip\..\Interfaces\{d13ee740-f628-48cd-be63-ddd430bc94b0}\3414E44514C414F4554454: [DhcpNameServer] 1.1.1.1 208.67.222.222
Tcpip\..\Interfaces\{d13ee740-f628-48cd-be63-ddd430bc94b0}\C496675626F687D223332363: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d13ee740-f628-48cd-be63-ddd430bc94b0}\C496675626F687D223332363: [DhcpDomain] home
Edge:
=======
Edge Profile: C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-02]
Edge HomePage: Default -> hxxps://www.google.fr/
Edge DefaultSearchURL: Default -> hxxps://searchsafe.norton.com/search?omnisearch=yes&q={searchTerms}
Edge DefaultSearchKeyword: Default -> nortonsafe
Edge DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?limit=10&li=ff&hl=fr&q={searchTerms}
Edge Extension: (Norton Safe Web) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bdaafgjhhjkdplpffldcncdignokfkbo [2023-12-27]
Edge Extension: (Convertisseur de fichiers - Par Online-Convert.com) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dicgkflojhbopmagcacdklcpdfdcnhko [2023-12-27]
Edge Extension: (QueChoisir - Oqif) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\efbibldnjenfgnpiabghamemilpbkegn [2023-12-27]
Edge Extension: (Convertio) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2023-12-31]
Edge Extension: (Ghostery Bloqueur de Traqueurs et Publicités) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2023-12-27]
Edge Extension: (Google Docs hors connexion) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-11]
Edge Extension: (Google Mail Checker) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\glbpkcehjkihaknkjifkehdpjfngbdga [2023-12-27]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2023-12-27]
Edge Extension: (Rédacteur Microsoft : Vérificateur d’Orthographe et de Grammaire) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hokifickgkhplphjiodbggjmoafhignh [2023-12-27]
Edge Extension: (HP Network Check Launcher) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2023-12-31]
Edge Extension: (Edge relevant text changes) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-12-11]
Edge Extension: (Norton Password Manager) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lcccdlklhahfmobgpnilndimkankpnkg [2023-12-27]
Edge Extension: (Norton Home Page) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mhffmephdchhhbfjmdpoaldedhhdanbn [2023-12-31]
Edge Extension: (Vérificateur de messages Google) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2023-12-27]
Edge Extension: (Norton Safe) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mpnlkmlkncncpgnnkmkgoobfpnjmblnk [2023-12-31]
Edge Extension: (Signal Spam) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\npkncdihipibabapnailakhpajlglbfk [2023-12-27]
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [ocr@babylon.com] - C:\Program Files (x86)\Babylon\Babylon-Pro\Plugins\ocr@babylon.com => non trouvé(e)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-11-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-12-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [Pas de fichier]
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [Pas de fichier]
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-781171050-1149277943-1776734086-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-781171050-1149277943-1776734086-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-781171050-1149277943-1776734086-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default [2024-01-02]
CHR Notifications: Default -> hxxps://captchaverifier.top; hxxps://forum.zebulon.fr; hxxps://fr.quicklyexplore.com; hxxps://geneatique.cdn.pagesense.io; hxxps://mail.google.com; hxxps://my.norton.com; hxxps://quelle-demarche.com; hxxps://smsmms.orange.fr; hxxps://wp.aliexpress.com; hxxps://www.123pneus.fr; hxxps://www.atlasformen.fr; hxxps://www.blancheporte.fr; hxxps://www.commentcamarche.net; hxxps://www.daxon.fr; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.joueclub.fr; hxxps://www.michelin.fr; hxxps://www.samsung.com; hxxps://www.sephora.fr; hxxps://www.tf1.fr; hxxps://www.zebulon.fr
CHR HomePage: Default -> hxxps://www.google.fr/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Convertisseur de fichiers - Par Online-Convert.com) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\dicgkflojhbopmagcacdklcpdfdcnhko [2023-06-20]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-12-15]
CHR Extension: (QueChoisir - Oqif) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\efbibldnjenfgnpiabghamemilpbkegn [2022-06-08]
CHR Extension: (Convertio) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2022-06-29]
CHR Extension: (Norton Safe Web) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpbeacklnhmkkilekogeiekaglbmmka [2023-12-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
CHR Extension: (Rédacteur Microsoft : Vérificateur d’Orthographe et de Grammaire) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpaiobkfhnonedkhhfjpmhdalgeoebfa [2023-12-05]
CHR Extension: (HP Network Check Launcher) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2021-09-11]
CHR Extension: (Norton Home Page) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhffmephdchhhbfjmdpoaldedhhdanbn [2023-12-19]
CHR Extension: (Vérificateur de messages Google) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2021-09-11]
CHR Extension: (Ghostery Bloqueur de Traqueurs et Publicités) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2023-12-18]
CHR Extension: (Norton Safe) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpnlkmlkncncpgnnkmkgoobfpnjmblnk [2023-12-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-22]
CHR Extension: (Signal Spam) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\npkncdihipibabapnailakhpajlglbfk [2023-02-21]
CHR Profile: C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-06-10]
CHR Profile: C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-12-27]
CHR HomePage: Profile 1 -> orange.fr
CHR DefaultSearchURL: Profile 1 -> hxxps://www.bing.com/search?EID=MBSC&form=BGGCMF&pc=__PARAM__BG02&q={searchTerms}
CHR DefaultSuggestURL: Profile 1 -> hxxps://www.bing.com/osjson.aspx?form=BGGCSS&pc=__PARAM__BG02&query={searchTerms}
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-12-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-17]
CHR Extension: (Moteur de recherche Microsoft Bing) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hkecabaloghleaicfhefejdijblljpco [2023-12-22]
CHR Extension: (Connecteur Antidote) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmbopdiikkamfphhgcckcjhojnokgfeo [2023-12-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-07]
CHR Extension: (Orange page d'accueil) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2023-05-08]
CHR Profile: C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-12-27]
CHR HomePage: Profile 2 -> orange.fr
CHR DefaultSearchURL: Profile 2 -> hxxps://www.bing.com/search?EID=MBSC&form=BGGCMF&pc=__PARAM__BG02&q={searchTerms}
CHR DefaultSuggestURL: Profile 2 -> hxxps://www.bing.com/osjson.aspx?form=BGGCSS&pc=__PARAM__BG02&query={searchTerms}
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-12-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-22]
CHR Extension: (Moteur de recherche Microsoft Bing) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hkecabaloghleaicfhefejdijblljpco [2023-12-22]
CHR Extension: (Connecteur Antidote) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmbopdiikkamfphhgcckcjhojnokgfeo [2023-12-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-12-22]
CHR Extension: (Orange page d'accueil) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2023-12-22]
CHR Profile: C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\System Profile [2023-06-10]
CHR HKU\S-1-5-21-781171050-1149277943-1776734086-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-781171050-1149277943-1776734086-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hkecabaloghleaicfhefejdijblljpco]
CHR HKU\S-1-5-21-781171050-1149277943-1776734086-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmbopdiikkamfphhgcckcjhojnokgfeo]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh]
Brave:
=======
BRA Profile: C:\Users\Jean Jacques\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-06-10]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Jean Jacques\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-08-19]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Jean Jacques\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-08-19]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Jean Jacques\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-08-19]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Jean Jacques\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2021-08-19]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Jean Jacques\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-08-19]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-08-19] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-08-19] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\brave_vpn_helper.exe [2765336 2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
S3 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10837528 2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13233744 2023-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncHelper.exe [3514384 2023-12-17] (Microsoft Corporation -> Microsoft Corporation)
R2 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [886528 2023-01-15] (Glarysoft LTD -> Glarysoft Ltd)
S3 GUPMService; C:\Program Files (x86)\Glary Utilities 5\GUPMService.exe [76696 2023-04-14] (Glarysoft Ltd -> Glarysoft Ltd)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230360 2023-11-13] (HP Inc. -> HP Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9343840 2023-12-03] (Malwarebytes Inc. -> Malwarebytes)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.23.10.10\NortonSecurity.exe [344888 2023-11-06] (NortonLifeLock Inc. -> NortonLifelock Inc.)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.23.10.10\nsWscSvc.exe [1059176 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\OneDriveUpdaterService.exe [3851280 2023-12-17] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\elevation_service.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\Windows\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.22.10.9\Definitions\BASHDefs\20231225.001\BHDrvx64.sys [1706512 2023-09-25] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 ccSet_NGC; C:\Windows\System32\drivers\NGCx64\16170A0.00A\ccSetx64.sys [198280 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 clwvd10; C:\Windows\System32\drivers\clwvd10.sys [61104 2022-06-13] (CyberLink Corp. -> CyberLink Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [527832 2022-12-04] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 EnigmaFileMonDriver; C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys [76744 2022-08-03] (EnigmaSoft Limited -> EnigmaSoft Limited)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [159720 2023-09-11] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [45056 2023-01-18] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.22.10.9\Definitions\IPSDefs\20231229.064\IDSvia64.sys [1554400 2023-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [222784 2023-12-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-05-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2023-12-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 nsvst_NGC; C:\Windows\System32\drivers\NGCx64\16170A0.00A\nsvst.sys [57120 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 Revoflt; C:\Windows\System32\DRIVERS\revoflt.sys [38400 2021-11-17] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group)
R1 SRTSP; C:\Windows\System32\drivers\NGCx64\16170A0.00A\SRTSP64.SYS [956048 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SRTSPX; C:\Windows\System32\drivers\NGCx64\16170A0.00A\SRTSPX64.SYS [52872 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R0 SymEFASI; C:\Windows\System32\drivers\NGCx64\16170A0.00A\SYMEFASI64.SYS [2180248 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S0 SymELAM; C:\Windows\System32\drivers\NGCx64\16170A0.00A\SymELAM.sys [36016 2023-11-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100344 2022-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.22.10.9\SymPlatform\SymEvnt.sys [722400 2022-09-21] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymIRON; C:\Windows\System32\drivers\NGCx64\16170A0.00A\Ironx64.SYS [306824 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymNetS; C:\Windows\System32\drivers\NGCx64\16170A0.00A\symnets.sys [492728 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R2 WCMVCAM; C:\Windows\System32\drivers\wcmvcam64.sys [1071032 2012-04-15] (Tenki Technology Co., Ltd. -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49616 2022-11-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [25704 2022-10-03] (WDKTestCert user,132375440089837053 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [469288 2022-11-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-12] (Microsoft Windows -> Microsoft Corporation)
R1 wpCtrlDrv_NGC; C:\Windows\System32\drivers\NGCx64\16170A0.00A\wpCtrlDrv.sys [1016792 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
U0 Partizan; system32\drivers\Partizan.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-01-02 22:36 - 2024-01-02 22:37 - 000042966 _____ C:\Users\Jean Jacques\Desktop\FRST.txt
2024-01-02 22:35 - 2024-01-02 22:36 - 000000000 ____D C:\FRST
2024-01-02 22:34 - 2024-01-02 22:34 - 002387456 _____ (Farbar) C:\Users\Jean Jacques\Desktop\FRST64.exe
2024-01-02 17:18 - 2024-01-02 17:18 - 000000000 ____D C:\Windows\system32\Tasks\Remediation
2024-01-02 16:22 - 2024-01-02 17:16 - 000000000 ____D C:\Users\Jean Jacques\AppData\Roaming\Easeware
2023-12-31 18:11 - 2023-12-31 18:11 - 000000080 _____ C:\Users\Jean Jacques\Documents\bloc-notes.txt
2023-12-31 17:46 - 2023-12-31 17:46 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2023-12-27 11:38 - 2023-12-27 11:38 - 000000000 ____D C:\Users\Jean Jacques\Documents\Password Depot
2023-12-27 11:38 - 2023-12-27 11:38 - 000000000 ____D C:\Users\Jean Jacques\AppData\Roaming\AceBIT
2023-12-27 11:24 - 2023-12-27 11:32 - 000000000 ___HD C:\ProgramData\Iuyzrg
2023-12-27 11:23 - 2023-12-27 11:23 - 000000000 ____D C:\Users\Jean Jacques\AppData\Roaming\Dikolerad
2023-12-27 11:23 - 2023-12-27 11:23 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\DesktopCleanup
2023-12-27 11:23 - 2023-12-27 11:23 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\Default
2023-12-19 15:21 - 2023-12-19 15:21 - 000120463 _____ C:\Users\Jean Jacques\Downloads\releve_CCP1333596S020_20231211.pdf
2023-12-19 15:18 - 2023-12-19 15:19 - 000187066 _____ C:\Users\Jean Jacques\Downloads\RLV_CHQ_300040034100000707736_20231207.pdf
2023-12-19 14:50 - 2023-12-19 14:50 - 000132900 _____ C:\Users\Jean Jacques\Downloads\F014541.synX.pdf_lespar29.93.pdf
2023-12-17 11:01 - 2023-12-17 11:01 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-12-17 11:01 - 2023-12-17 11:01 - 000002146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-12-17 10:55 - 2023-12-17 10:56 - 000000202 _____ C:\Users\Jean Jacques\Desktop\Tutelles Paris.url
2023-12-15 14:56 - 2023-12-15 14:56 - 004083051 _____ C:\Users\Jean Jacques\Downloads\0749-0241_248_withWhitePage.pdf.remake.pdf
2023-12-14 17:17 - 2023-12-14 17:17 - 000000000 ____D C:\Windows\InboxApps
2023-12-14 12:07 - 2023-12-14 12:07 - 000016707 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2023-12-14 11:57 - 2023-12-14 11:57 - 000000000 ___HD C:\$WinREAgent
2023-12-13 15:18 - 2023-12-13 15:18 - 000228909 _____ C:\Users\Jean Jacques\Downloads\Les BÉTON des 40 et 47.pdf
2023-12-12 16:31 - 2023-12-12 16:31 - 000000000 ____D C:\Program Files\Plugins
2023-12-08 15:45 - 2023-12-08 15:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SSDFresh
2023-12-07 15:30 - 2023-12-07 15:31 - 000223155 _____ C:\Users\Jean Jacques\Downloads\pression PSI-BAR.pdf
2023-12-05 11:31 - 2023-12-05 11:31 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-01-02 22:36 - 2021-12-18 18:40 - 000000000 ____D C:\Windows\SystemTemp
2024-01-02 22:36 - 2021-08-22 10:01 - 000000000 ____D C:\Program Files (x86)\Google
2024-01-02 22:35 - 2023-04-14 10:37 - 000000000 ____D C:\Log
2024-01-02 22:30 - 2021-08-20 15:07 - 000004190 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{436DB08A-76B1-4544-AEAD-F14017E2C537}
2024-01-02 22:28 - 2023-11-15 15:54 - 000000000 ____D C:\Windows\system32\Tasks\Norton 360
2024-01-02 22:28 - 2021-08-19 16:30 - 001911778 _____ C:\Windows\system32\PerfStringBackup.INI
2024-01-02 22:28 - 2019-12-07 15:49 - 000843350 _____ C:\Windows\system32\perfh00C.dat
2024-01-02 22:28 - 2019-12-07 15:49 - 000168692 _____ C:\Windows\system32\perfc00C.dat
2024-01-02 22:28 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2024-01-02 22:25 - 2023-05-22 16:33 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\Malwarebytes
2024-01-02 22:24 - 2021-08-19 16:49 - 000000000 __SHD C:\Users\Jean Jacques\IntelGraphicsProfiles
2024-01-02 22:24 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-01-02 22:23 - 2022-11-14 14:36 - 000008192 ___SH C:\DumpStack.log.tmp
2024-01-02 22:23 - 2021-08-19 16:24 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-01-02 18:15 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI
2024-01-02 18:13 - 2022-01-03 15:43 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\Norton
2024-01-02 17:00 - 2021-08-20 13:18 - 000000000 ____D C:\Users\Jean Jacques\AppData\Roaming\Microsoft\Excel
2024-01-02 14:35 - 2021-08-19 16:30 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\Packages
2024-01-02 14:10 - 2021-08-20 13:09 - 000000000 ____D C:\Users\Jean Jacques\AppData\Roaming\Microsoft\Word
2024-01-02 14:08 - 2021-08-25 13:22 - 000000000 ___RD C:\Mes Données
2024-01-02 14:05 - 2021-08-19 16:24 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-01-01 21:38 - 2022-02-21 15:45 - 000000000 ____D C:\Program Files\Microsoft Office
2023-12-31 17:47 - 2021-08-19 16:37 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\PlaceholderTileLogoFolder
2023-12-30 17:16 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2023-12-30 17:04 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2023-12-30 15:40 - 2021-08-20 09:18 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\D3DSCache
2023-12-28 10:32 - 2021-08-25 15:24 - 000000000 ____D C:\Users\Jean Jacques\AppData\LocalLow\Norton
2023-12-27 17:31 - 2021-08-20 16:30 - 000000000 ____D C:\Users\Jean Jacques\AppData\Roaming\SolSuite
2023-12-27 11:53 - 2021-08-20 15:01 - 000000000 ___RD C:\Users\Jean Jacques\Desktop\Utilitaires
2023-12-27 11:33 - 2021-08-26 10:55 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\CrashDumps
2023-12-27 11:31 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2023-12-22 10:24 - 2023-11-13 15:34 - 000002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-22 10:24 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-22 10:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2023-12-22 10:11 - 2021-08-19 17:54 - 000002338 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-12-18 14:49 - 2021-09-12 13:28 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-12-17 11:01 - 2021-12-13 15:26 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-781171050-1149277943-1776734086-1001
2023-12-15 16:22 - 2022-01-05 15:28 - 000000000 ____D C:\Program Files (x86)\SSDFresh
2023-12-15 16:22 - 2021-10-17 09:56 - 000000000 ____D C:\Windows\system32\Tasks\Abelssoft
2023-12-15 11:47 - 2022-09-17 13:25 - 000000000 ____D C:\Users\Jean Jacques\AppData\Roaming\XYplorer
2023-12-14 17:17 - 2021-08-19 16:24 - 001096640 _____ C:\Windows\system32\FNTCACHE.DAT
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2023-12-14 12:07 - 2021-08-19 16:28 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-12-08 15:45 - 2022-01-05 15:28 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\Abelssoft
2023-12-08 15:31 - 2021-08-22 10:01 - 000003884 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2023-12-08 15:31 - 2021-08-22 10:01 - 000003760 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2023-12-07 09:30 - 2021-08-19 17:52 - 000003612 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA
2023-12-07 09:30 - 2021-08-19 17:52 - 000003488 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore
2023-12-05 11:42 - 2021-08-20 15:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2023-12-05 11:32 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
==================== Fichiers à la racine de certains dossiers ========
2021-10-28 20:28 - 2021-10-28 20:29 - 001269816 _____ () C:\Users\Jean Jacques\acdseeultimate.exe
2022-06-24 16:30 - 2017-11-19 12:51 - 000004286 _____ () C:\Program Files (x86)\FalcoGo.ico
2022-06-24 16:30 - 2017-11-19 12:53 - 000000044 _____ () C:\Program Files (x86)\FalcoGo.url
2022-06-24 16:30 - 2016-01-05 12:37 - 000004286 _____ () C:\Program Files (x86)\FalconLine.ico
2022-06-24 16:30 - 2016-01-05 12:25 - 000000047 _____ () C:\Program Files (x86)\FalconLine.url
2022-06-24 16:30 - 2016-12-21 00:39 - 000004286 _____ () C:\Program Files (x86)\FalcoSpace.ico
2022-06-24 16:30 - 2016-12-21 00:36 - 000000047 _____ () C:\Program Files (x86)\FalcoSpace.url
2021-08-28 17:14 - 2021-09-19 16:46 - 000000338 _____ () C:\Users\Jean Jacques\AppData\Roaming\.openyahtzee
2023-02-21 10:51 - 2023-02-21 11:03 - 000091466 _____ () C:\Users\Jean Jacques\AppData\Local\23221-105116-CLCSIWriter.txt
2023-01-18 14:43 - 2023-01-18 14:46 - 000000128 _____ () C:\Users\Jean Jacques\AppData\Local\PUTTY.RND
2021-08-21 20:19 - 2021-08-21 20:19 - 000007597 _____ () C:\Users\Jean Jacques\AppData\Local\Resmon.ResmonCfg
2022-04-16 16:49 - 2022-04-16 16:49 - 000000448 _____ () C:\Users\Jean Jacques\AppData\Local\rtb.log
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Jean Jacques (administrateur) sur ACER-ASPIRE3 (Acer Aspire A315-54K) (02-01-2024 22:36:29)
Exécuté depuis C:\Users\Jean Jacques\Desktop\FRST64.exe
Profils chargés: Jean Jacques
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3803 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(ctfmon.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_405d2b89ed51239d\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_405d2b89ed51239d\igfxEM.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <14>
(explorer.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2311.21001.0_x64__8wekyb3d8bbwe\MicrosoftSecurityApp\MicrosoftSecurityApp.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <12>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Jean Jacques\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.363\GoogleCrashHandler64.exe
(PrintCtrl.exe ->) (ActMask Group Co.,Ltd -> ActMask Co.,Ltd - hxxp://www.all2pdf.com) C:\Windows\System32\PrintDisp.exe <2>
(services.exe ->) (ActMask Group Co., Ltd -> ActMask Co.,Ltd - hxxp://WWW.ALL2PDF.COM) C:\Windows\System32\PrintCtrl.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_405d2b89ed51239d\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_b2aff6fd6fd828e2\IntelCpHDCPSvc.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NortonLifeLock Inc. -> NortonLifelock Inc.) C:\Program Files\Norton Security\Engine\22.23.10.10\NortonSecurity.exe <2>
(services.exe ->) (NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.23.10.10\nsWscSvc.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <3>
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [PrintDisp] => C:\Windows\system32\PrintDisp.exe [609296 2022-06-29] (ActMask Group Co.,Ltd -> ActMask Co.,Ltd - hxxp://www.all2pdf.com)
HKLM\...\Run: [BraveVpnWireguardService] => C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10837528 2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\...\Policies\Explorer: [NoThumbnailCache] 0
HKLM\...\Policies\Explorer: [DisableThumbnailCache] 0
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\MRT: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restriction <==== ATTENTION
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2595344 2023-12-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [Microsoft Edge Update] => C:\Users\Jean Jacques\AppData\Local\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateCore.exe [264264 2023-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [QMxNetworkSync] => C:\Program Files\Common Files\MAGIX Services\Update Notifier\QMxNetworkSync.exe (Pas de fichier)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [Emjysoft Sauvegarde Facile] => C:\Program Files\Emjysoft\Sauvegarde-Facile\usb-tools.exe [1304280 2019-09-12] (Emjysoft -> Emjysoft)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [BingWallpaperApp] => C:\Users\Jean Jacques\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe [14045728 2023-10-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [11517400 2023-11-05] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [GoogleChromeAutoLaunch_A7AE1EB99E0EA49DC89056588FB63EA2] => "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [2693920 2023-12-20] (Google LLC -> Google LLC)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Run: [MicrosoftEdgeAutoLaunch_7DC9D029A103C53B17DFE8649BF7A3AD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854280 2023-12-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Policies\Explorer: [NoThumbnailCache] 0
HKU\S-1-5-21-781171050-1149277943-1776734086-1001\...\Policies\Explorer: [DisableThumbnailCache] 0
HKLM\...\Windows x64\Print Processors\ActMaskR: C:\Windows\System32\spool\prtprocs\x64\ActPrint.dll [54304 2021-10-03] (ActMask Group Co.,Ltd -> ActMask Co.,Ltd)
HKLM\...\Print\Monitors\HP E311 Status Monitor: C:\Windows\system32\hpinkstsE311LM.dll [399392 2023-10-04] (HP Inc. -> HP Inc.)
HKLM\...\Print\Monitors\PDF-XChange5: C:\Windows\system32\pxc50pm.dll [57056 2016-01-18] (Tracker Software Products (Canada) Ltd -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\...\AppCompatFlags\Custom\creamodele.exe: [{0ac8999f-3635-4d40-a73e-6776b132ea1c}.sdb] -> Database CDIP
HKLM\Software\...\AppCompatFlags\Custom\Protectis.exe: [{0ac8999f-3635-4d40-a73e-6776b132ea1c}.sdb] -> Database CDIP
HKLM\Software\...\AppCompatFlags\InstalledSDB\{0ac8999f-3635-4d40-a73e-6776b132ea1c}: [DatabasePath] -> C:\Windows\AppPatch\CustomSDB\{0ac8999f-3635-4d40-a73e-6776b132ea1c}.sdb [2013-12-27]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.130\Installer\chrmstp.exe [2023-12-27] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\Installer\chrmstp.exe [2023-12-22] (Brave Software, Inc. -> Brave Software, Inc.)
BootExecute: autocheck autochk *
GroupPolicy: Restriction - Chrome <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {31954813-6C56-4499-A988-3D85A03C0183} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {AE3FE8FE-0ED5-4CFC-8FCF-9315C2F3AEF0} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_238_pepper.exe -check pepperplugin (Pas de fichier)
Task: {FC31C31B-7F46-4353-8F2D-08D4C9CBA35D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Pas de fichier)
Task: {508EADF0-F8B5-421F-96AF-AE61270E8950} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-08-19] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {F53E88A4-4788-4295-A58C-34066D99B27C} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-08-19] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {E47CFED4-7FBA-4C9A-BDAB-A6A37796D42B} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5550856 2023-12-14] (Microsoft Windows -> Microsoft Corporation)
Task: {E466F65A-63FE-4839-A6DE-6A6A32695FD7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-22] (Google LLC -> Google LLC)
Task: {50C88733-676E-4D8B-AF46-FDA48AC9A57A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-22] (Google LLC -> Google LLC)
Task: {BF9D33ED-4E97-44C3-9E55-C35293C12A13} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-781171050-1149277943-1776734086-1001Core => C:\Users\Jean Jacques\AppData\Local\Google\Update\GoogleUpdate.exe /c (Pas de fichier)
Task: {0BFC1540-D550-458B-99CD-3F055435081E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-781171050-1149277943-1776734086-1001UA => C:\Users\Jean Jacques\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler (Pas de fichier)
Task: {DA0D8B90-5F72-4832-ADA6-7A45BFEFAFA1} - System32\Tasks\HPCustParticipation HP DeskJet 3630 series => C:\Program Files\HP\HP DeskJet 3630 series\Bin\HPCustPartic.exe [6439584 2021-11-15] (HP Inc. -> HP Inc.)
Task: {E670198A-FEC8-48B5-9365-080F06684EEA} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-781171050-1149277943-1776734086-1001 => C:\Users\Jean Jacques\AppData\Local\Programs\Messenger\MessengerHelper.exe --lassie (Pas de fichier)
Task: {5F83880B-4B01-4F4E-A738-13C247807F16} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175440 2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA4BEF1C-5670-4256-BFE4-5D40A35CCA6F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175440 2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {481DB3EE-F61E-4979-897F-1CF312414D76} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [306624 2024-01-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {233EE053-6203-44F4-93CA-9B2E7BE42552} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [306624 2024-01-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {ABE6A7A6-9181-469F-A318-B69A170FF3D2} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169144 2023-12-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {B1060919-D17F-41A6-A5DE-ABAF48D3ECB2} - System32\Tasks\Microsoft\Windows\FileHistory\Microsoft.Web.Managices.Portable => C:\Windows\microsoft.net\framework\v4.0.30319\regasm.exe [58864 2022-06-25] (Microsoft Corporation -> Microsoft Corporation) -> "C:\Program Files (x86)\Common Files\DiscoverDesktop\DieegeionMail\IMGwsulavkr.dll" /unregister <==== ATTENTION
Task: {E31EE2E2-330B-4992-B423-AEDBF85F4B64} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\Jean -> Jacques\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe
Task: {27722EC3-2113-4DAF-933D-CC47C0B76437} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-781171050-1149277943-1776734086-1001Core => C:\Users\Jean Jacques\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {B5A7998F-7690-4CE9-AD16-DF0E295D6865} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-781171050-1149277943-1776734086-1001UA => C:\Users\Jean Jacques\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {FAE597F3-A453-4212-A7DA-5839A34AA5E9} - System32\Tasks\Norton 360\Norton 360 Autofix => C:\Program Files\Norton Security\Engine\22.23.10.10\SymErr.exe [379024 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {F1105BFE-9F6E-45A4-90DB-1AF20541CB3B} - System32\Tasks\Norton 360\Norton 360 Error Analyzer => C:\Program Files\Norton Security\Engine\22.23.10.10\SymErr.exe [379024 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {572141A8-D3E1-47A8-8137-99B3ED4DB841} - System32\Tasks\Norton 360\Norton 360 Error Processor => C:\Program Files\Norton Security\Engine\22.23.10.10\SymErr.exe [379024 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {0AEF3DD5-79F5-4063-A787-B70C3C735656} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.23.10.10\WSCStub.exe [646520 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {DC62BCEF-34EA-49E2-B04B-8646BC4D3A76} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {17C3D5C6-572D-4C4F-81FD-27F6440BF64B} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-781171050-1149277943-1776734086-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {03D0F53D-53FE-4F2D-9266-8610FF30D60B} - System32\Tasks\Opera scheduled Autoupdate 1659543425 => C:\Users\Jean Jacques\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Pas de fichier)
Task: {72C26F6B-EDE7-4311-BD72-9D7B1E9B10CF} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton 360\Upgrade.exe [2353000 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {C6CB2CA1-1A50-4D4B-AA4A-93E49F07BAF5} - System32\Tasks\SoftMakerUpdater => "C:\Program Files (x86)\SoftMaker FreeOffice 2021\SoftMakerUpdaterTool.exe" 1 (Pas de fichier)
Task: {EE053CF7-1037-419C-B88C-FCFEF6457CD5} - System32\Tasks\Uninstaller_SkipUac_Jean_Jacques => "C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe" /UninstallExplorer (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0bc4c280-8b53-453b-bd08-6c3f6d3a8153}: [DhcpNameServer] 192.168.252.220
Tcpip\..\Interfaces\{0bc4c280-8b53-453b-bd08-6c3f6d3a8153}\3414E44514C414F4554454: [DhcpNameServer] 1.1.1.1 208.67.222.222
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}: [DhcpNameServer] 192.168.220.2
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}\05569727F6574756474373: [DhcpNameServer] 192.168.62.119
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}\3414E44514C414F4554454: [DhcpNameServer] 172.20.0.1
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}\35F64796164756: [DhcpNameServer] 192.168.58.211
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}\C496675626F687D223332363: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}\C496675626F687D223332363: [DhcpDomain] home
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}\C496675626F687D264233414: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{33d4d051-49ce-42bc-af51-6771da276c41}\C496675626F687D264233414: [DhcpDomain] home
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}\2496D626F602D45646961675966496: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}\2496D626F602D45646961675966496: [DhcpDomain] iwibox.info
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}\759664960274271647579647022496D626F6: [DhcpNameServer] 5.135.52.178 54.37.54.178
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}\759664960274271647579647022496D626F6: [DhcpDomain] iwibox.info
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}\D43644F6E616C646723702642716E63656: [DhcpNameServer] 178.32.119.52 178.32.122.78
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}\D43644F6E616C646723702642716E63656: [DhcpDomain] hotspotwifimcdo.fr
Tcpip\..\Interfaces\{3766a448-cb45-4cc2-bb8f-89aee24d1a94}\D4943425F44554B4F54374: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8db8cb91-96e1-43b9-993e-89d36691499a}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8db8cb91-96e1-43b9-993e-89d36691499a}: [DhcpDomain] home
Tcpip\..\Interfaces\{8db8cb91-96e1-43b9-993e-89d36691499a}\3414E44514C414F4554454: [DhcpNameServer] 1.1.1.1 208.67.222.222
Tcpip\..\Interfaces\{d13ee740-f628-48cd-be63-ddd430bc94b0}: [DhcpNameServer] 192.168.175.179
Tcpip\..\Interfaces\{d13ee740-f628-48cd-be63-ddd430bc94b0}\3414E44514C414F4554454: [DhcpNameServer] 1.1.1.1 208.67.222.222
Tcpip\..\Interfaces\{d13ee740-f628-48cd-be63-ddd430bc94b0}\C496675626F687D223332363: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d13ee740-f628-48cd-be63-ddd430bc94b0}\C496675626F687D223332363: [DhcpDomain] home
Edge:
=======
Edge Profile: C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-02]
Edge HomePage: Default -> hxxps://www.google.fr/
Edge DefaultSearchURL: Default -> hxxps://searchsafe.norton.com/search?omnisearch=yes&q={searchTerms}
Edge DefaultSearchKeyword: Default -> nortonsafe
Edge DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?limit=10&li=ff&hl=fr&q={searchTerms}
Edge Extension: (Norton Safe Web) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bdaafgjhhjkdplpffldcncdignokfkbo [2023-12-27]
Edge Extension: (Convertisseur de fichiers - Par Online-Convert.com) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dicgkflojhbopmagcacdklcpdfdcnhko [2023-12-27]
Edge Extension: (QueChoisir - Oqif) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\efbibldnjenfgnpiabghamemilpbkegn [2023-12-27]
Edge Extension: (Convertio) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2023-12-31]
Edge Extension: (Ghostery Bloqueur de Traqueurs et Publicités) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2023-12-27]
Edge Extension: (Google Docs hors connexion) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-11]
Edge Extension: (Google Mail Checker) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\glbpkcehjkihaknkjifkehdpjfngbdga [2023-12-27]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2023-12-27]
Edge Extension: (Rédacteur Microsoft : Vérificateur d’Orthographe et de Grammaire) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hokifickgkhplphjiodbggjmoafhignh [2023-12-27]
Edge Extension: (HP Network Check Launcher) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2023-12-31]
Edge Extension: (Edge relevant text changes) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-12-11]
Edge Extension: (Norton Password Manager) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lcccdlklhahfmobgpnilndimkankpnkg [2023-12-27]
Edge Extension: (Norton Home Page) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mhffmephdchhhbfjmdpoaldedhhdanbn [2023-12-31]
Edge Extension: (Vérificateur de messages Google) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2023-12-27]
Edge Extension: (Norton Safe) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mpnlkmlkncncpgnnkmkgoobfpnjmblnk [2023-12-31]
Edge Extension: (Signal Spam) - C:\Users\Jean Jacques\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\npkncdihipibabapnailakhpajlglbfk [2023-12-27]
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [ocr@babylon.com] - C:\Program Files (x86)\Babylon\Babylon-Pro\Plugins\ocr@babylon.com => non trouvé(e)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-11-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\npFoxitPDFEditorPlugin.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-12-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [Pas de fichier]
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [Pas de fichier]
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-781171050-1149277943-1776734086-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-781171050-1149277943-1776734086-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-781171050-1149277943-1776734086-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default [2024-01-02]
CHR Notifications: Default -> hxxps://captchaverifier.top; hxxps://forum.zebulon.fr; hxxps://fr.quicklyexplore.com; hxxps://geneatique.cdn.pagesense.io; hxxps://mail.google.com; hxxps://my.norton.com; hxxps://quelle-demarche.com; hxxps://smsmms.orange.fr; hxxps://wp.aliexpress.com; hxxps://www.123pneus.fr; hxxps://www.atlasformen.fr; hxxps://www.blancheporte.fr; hxxps://www.commentcamarche.net; hxxps://www.daxon.fr; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.joueclub.fr; hxxps://www.michelin.fr; hxxps://www.samsung.com; hxxps://www.sephora.fr; hxxps://www.tf1.fr; hxxps://www.zebulon.fr
CHR HomePage: Default -> hxxps://www.google.fr/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Convertisseur de fichiers - Par Online-Convert.com) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\dicgkflojhbopmagcacdklcpdfdcnhko [2023-06-20]
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-12-15]
CHR Extension: (QueChoisir - Oqif) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\efbibldnjenfgnpiabghamemilpbkegn [2022-06-08]
CHR Extension: (Convertio) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2022-06-29]
CHR Extension: (Norton Safe Web) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpbeacklnhmkkilekogeiekaglbmmka [2023-12-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-17]
CHR Extension: (Rédacteur Microsoft : Vérificateur d’Orthographe et de Grammaire) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpaiobkfhnonedkhhfjpmhdalgeoebfa [2023-12-05]
CHR Extension: (HP Network Check Launcher) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2021-09-11]
CHR Extension: (Norton Home Page) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhffmephdchhhbfjmdpoaldedhhdanbn [2023-12-19]
CHR Extension: (Vérificateur de messages Google) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2021-09-11]
CHR Extension: (Ghostery Bloqueur de Traqueurs et Publicités) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2023-12-18]
CHR Extension: (Norton Safe) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpnlkmlkncncpgnnkmkgoobfpnjmblnk [2023-12-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-22]
CHR Extension: (Signal Spam) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\npkncdihipibabapnailakhpajlglbfk [2023-02-21]
CHR Profile: C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-06-10]
CHR Profile: C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-12-27]
CHR HomePage: Profile 1 -> orange.fr
CHR DefaultSearchURL: Profile 1 -> hxxps://www.bing.com/search?EID=MBSC&form=BGGCMF&pc=__PARAM__BG02&q={searchTerms}
CHR DefaultSuggestURL: Profile 1 -> hxxps://www.bing.com/osjson.aspx?form=BGGCSS&pc=__PARAM__BG02&query={searchTerms}
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-12-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-17]
CHR Extension: (Moteur de recherche Microsoft Bing) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hkecabaloghleaicfhefejdijblljpco [2023-12-22]
CHR Extension: (Connecteur Antidote) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmbopdiikkamfphhgcckcjhojnokgfeo [2023-12-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-07]
CHR Extension: (Orange page d'accueil) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2023-05-08]
CHR Profile: C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-12-27]
CHR HomePage: Profile 2 -> orange.fr
CHR DefaultSearchURL: Profile 2 -> hxxps://www.bing.com/search?EID=MBSC&form=BGGCMF&pc=__PARAM__BG02&q={searchTerms}
CHR DefaultSuggestURL: Profile 2 -> hxxps://www.bing.com/osjson.aspx?form=BGGCSS&pc=__PARAM__BG02&query={searchTerms}
CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-12-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-22]
CHR Extension: (Moteur de recherche Microsoft Bing) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hkecabaloghleaicfhefejdijblljpco [2023-12-22]
CHR Extension: (Connecteur Antidote) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmbopdiikkamfphhgcckcjhojnokgfeo [2023-12-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-12-22]
CHR Extension: (Orange page d'accueil) - C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2023-12-22]
CHR Profile: C:\Users\Jean Jacques\AppData\Local\Google\Chrome\User Data\System Profile [2023-06-10]
CHR HKU\S-1-5-21-781171050-1149277943-1776734086-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-781171050-1149277943-1776734086-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hkecabaloghleaicfhefejdijblljpco]
CHR HKU\S-1-5-21-781171050-1149277943-1776734086-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmbopdiikkamfphhgcckcjhojnokgfeo]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh]
Brave:
=======
BRA Profile: C:\Users\Jean Jacques\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-06-10]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Jean Jacques\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-08-19]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Jean Jacques\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-08-19]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Jean Jacques\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-08-19]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Jean Jacques\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2021-08-19]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Jean Jacques\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-08-19]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-08-19] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-08-19] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\brave_vpn_helper.exe [2765336 2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
S3 BraveVpnWireguardService; C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\BraveVpnWireguardService\brave_vpn_wireguard_service.exe [10837528 2023-12-21] (Brave Software, Inc. -> Brave Software, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13233744 2023-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncHelper.exe [3514384 2023-12-17] (Microsoft Corporation -> Microsoft Corporation)
R2 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [886528 2023-01-15] (Glarysoft LTD -> Glarysoft Ltd)
S3 GUPMService; C:\Program Files (x86)\Glary Utilities 5\GUPMService.exe [76696 2023-04-14] (Glarysoft Ltd -> Glarysoft Ltd)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230360 2023-11-13] (HP Inc. -> HP Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9343840 2023-12-03] (Malwarebytes Inc. -> Malwarebytes)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.23.10.10\NortonSecurity.exe [344888 2023-11-06] (NortonLifeLock Inc. -> NortonLifelock Inc.)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.23.10.10\nsWscSvc.exe [1059176 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\OneDriveUpdaterService.exe [3851280 2023-12-17] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\120.1.61.109\elevation_service.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AcerAirplaneModeController; C:\Windows\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.22.10.9\Definitions\BASHDefs\20231225.001\BHDrvx64.sys [1706512 2023-09-25] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 ccSet_NGC; C:\Windows\System32\drivers\NGCx64\16170A0.00A\ccSetx64.sys [198280 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 clwvd10; C:\Windows\System32\drivers\clwvd10.sys [61104 2022-06-13] (CyberLink Corp. -> CyberLink Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [527832 2022-12-04] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S3 EnigmaFileMonDriver; C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys [76744 2022-08-03] (EnigmaSoft Limited -> EnigmaSoft Limited)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [159720 2023-09-11] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [45056 2023-01-18] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.22.10.9\Definitions\IPSDefs\20231229.064\IDSvia64.sys [1554400 2023-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [222784 2023-12-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-05-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2023-12-23] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 nsvst_NGC; C:\Windows\System32\drivers\NGCx64\16170A0.00A\nsvst.sys [57120 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 Revoflt; C:\Windows\System32\DRIVERS\revoflt.sys [38400 2021-11-17] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group)
R1 SRTSP; C:\Windows\System32\drivers\NGCx64\16170A0.00A\SRTSP64.SYS [956048 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SRTSPX; C:\Windows\System32\drivers\NGCx64\16170A0.00A\SRTSPX64.SYS [52872 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R0 SymEFASI; C:\Windows\System32\drivers\NGCx64\16170A0.00A\SYMEFASI64.SYS [2180248 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
S0 SymELAM; C:\Windows\System32\drivers\NGCx64\16170A0.00A\SymELAM.sys [36016 2023-11-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100344 2022-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.22.10.9\SymPlatform\SymEvnt.sys [722400 2022-09-21] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymIRON; C:\Windows\System32\drivers\NGCx64\16170A0.00A\Ironx64.SYS [306824 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R1 SymNetS; C:\Windows\System32\drivers\NGCx64\16170A0.00A\symnets.sys [492728 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom)
R2 WCMVCAM; C:\Windows\System32\drivers\wcmvcam64.sys [1071032 2012-04-15] (Tenki Technology Co., Ltd. -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49616 2022-11-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [25704 2022-10-03] (WDKTestCert user,132375440089837053 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [469288 2022-11-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-12] (Microsoft Windows -> Microsoft Corporation)
R1 wpCtrlDrv_NGC; C:\Windows\System32\drivers\NGCx64\16170A0.00A\wpCtrlDrv.sys [1016792 2023-11-06] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
U0 Partizan; system32\drivers\Partizan.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-01-02 22:36 - 2024-01-02 22:37 - 000042966 _____ C:\Users\Jean Jacques\Desktop\FRST.txt
2024-01-02 22:35 - 2024-01-02 22:36 - 000000000 ____D C:\FRST
2024-01-02 22:34 - 2024-01-02 22:34 - 002387456 _____ (Farbar) C:\Users\Jean Jacques\Desktop\FRST64.exe
2024-01-02 17:18 - 2024-01-02 17:18 - 000000000 ____D C:\Windows\system32\Tasks\Remediation
2024-01-02 16:22 - 2024-01-02 17:16 - 000000000 ____D C:\Users\Jean Jacques\AppData\Roaming\Easeware
2023-12-31 18:11 - 2023-12-31 18:11 - 000000080 _____ C:\Users\Jean Jacques\Documents\bloc-notes.txt
2023-12-31 17:46 - 2023-12-31 17:46 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2023-12-27 11:38 - 2023-12-27 11:38 - 000000000 ____D C:\Users\Jean Jacques\Documents\Password Depot
2023-12-27 11:38 - 2023-12-27 11:38 - 000000000 ____D C:\Users\Jean Jacques\AppData\Roaming\AceBIT
2023-12-27 11:24 - 2023-12-27 11:32 - 000000000 ___HD C:\ProgramData\Iuyzrg
2023-12-27 11:23 - 2023-12-27 11:23 - 000000000 ____D C:\Users\Jean Jacques\AppData\Roaming\Dikolerad
2023-12-27 11:23 - 2023-12-27 11:23 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\DesktopCleanup
2023-12-27 11:23 - 2023-12-27 11:23 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\Default
2023-12-19 15:21 - 2023-12-19 15:21 - 000120463 _____ C:\Users\Jean Jacques\Downloads\releve_CCP1333596S020_20231211.pdf
2023-12-19 15:18 - 2023-12-19 15:19 - 000187066 _____ C:\Users\Jean Jacques\Downloads\RLV_CHQ_300040034100000707736_20231207.pdf
2023-12-19 14:50 - 2023-12-19 14:50 - 000132900 _____ C:\Users\Jean Jacques\Downloads\F014541.synX.pdf_lespar29.93.pdf
2023-12-17 11:01 - 2023-12-17 11:01 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-12-17 11:01 - 2023-12-17 11:01 - 000002146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-12-17 10:55 - 2023-12-17 10:56 - 000000202 _____ C:\Users\Jean Jacques\Desktop\Tutelles Paris.url
2023-12-15 14:56 - 2023-12-15 14:56 - 004083051 _____ C:\Users\Jean Jacques\Downloads\0749-0241_248_withWhitePage.pdf.remake.pdf
2023-12-14 17:17 - 2023-12-14 17:17 - 000000000 ____D C:\Windows\InboxApps
2023-12-14 12:07 - 2023-12-14 12:07 - 000016707 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2023-12-14 11:57 - 2023-12-14 11:57 - 000000000 ___HD C:\$WinREAgent
2023-12-13 15:18 - 2023-12-13 15:18 - 000228909 _____ C:\Users\Jean Jacques\Downloads\Les BÉTON des 40 et 47.pdf
2023-12-12 16:31 - 2023-12-12 16:31 - 000000000 ____D C:\Program Files\Plugins
2023-12-08 15:45 - 2023-12-08 15:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SSDFresh
2023-12-07 15:30 - 2023-12-07 15:31 - 000223155 _____ C:\Users\Jean Jacques\Downloads\pression PSI-BAR.pdf
2023-12-05 11:31 - 2023-12-05 11:31 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-01-02 22:36 - 2021-12-18 18:40 - 000000000 ____D C:\Windows\SystemTemp
2024-01-02 22:36 - 2021-08-22 10:01 - 000000000 ____D C:\Program Files (x86)\Google
2024-01-02 22:35 - 2023-04-14 10:37 - 000000000 ____D C:\Log
2024-01-02 22:30 - 2021-08-20 15:07 - 000004190 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{436DB08A-76B1-4544-AEAD-F14017E2C537}
2024-01-02 22:28 - 2023-11-15 15:54 - 000000000 ____D C:\Windows\system32\Tasks\Norton 360
2024-01-02 22:28 - 2021-08-19 16:30 - 001911778 _____ C:\Windows\system32\PerfStringBackup.INI
2024-01-02 22:28 - 2019-12-07 15:49 - 000843350 _____ C:\Windows\system32\perfh00C.dat
2024-01-02 22:28 - 2019-12-07 15:49 - 000168692 _____ C:\Windows\system32\perfc00C.dat
2024-01-02 22:28 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2024-01-02 22:25 - 2023-05-22 16:33 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\Malwarebytes
2024-01-02 22:24 - 2021-08-19 16:49 - 000000000 __SHD C:\Users\Jean Jacques\IntelGraphicsProfiles
2024-01-02 22:24 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-01-02 22:23 - 2022-11-14 14:36 - 000008192 ___SH C:\DumpStack.log.tmp
2024-01-02 22:23 - 2021-08-19 16:24 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-01-02 18:15 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI
2024-01-02 18:13 - 2022-01-03 15:43 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\Norton
2024-01-02 17:00 - 2021-08-20 13:18 - 000000000 ____D C:\Users\Jean Jacques\AppData\Roaming\Microsoft\Excel
2024-01-02 14:35 - 2021-08-19 16:30 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\Packages
2024-01-02 14:10 - 2021-08-20 13:09 - 000000000 ____D C:\Users\Jean Jacques\AppData\Roaming\Microsoft\Word
2024-01-02 14:08 - 2021-08-25 13:22 - 000000000 ___RD C:\Mes Données
2024-01-02 14:05 - 2021-08-19 16:24 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-01-01 21:38 - 2022-02-21 15:45 - 000000000 ____D C:\Program Files\Microsoft Office
2023-12-31 17:47 - 2021-08-19 16:37 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\PlaceholderTileLogoFolder
2023-12-30 17:16 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2023-12-30 17:04 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2023-12-30 15:40 - 2021-08-20 09:18 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\D3DSCache
2023-12-28 10:32 - 2021-08-25 15:24 - 000000000 ____D C:\Users\Jean Jacques\AppData\LocalLow\Norton
2023-12-27 17:31 - 2021-08-20 16:30 - 000000000 ____D C:\Users\Jean Jacques\AppData\Roaming\SolSuite
2023-12-27 11:53 - 2021-08-20 15:01 - 000000000 ___RD C:\Users\Jean Jacques\Desktop\Utilitaires
2023-12-27 11:33 - 2021-08-26 10:55 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\CrashDumps
2023-12-27 11:31 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2023-12-22 10:24 - 2023-11-13 15:34 - 000002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-22 10:24 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-22 10:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2023-12-22 10:11 - 2021-08-19 17:54 - 000002338 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-12-18 14:49 - 2021-09-12 13:28 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-12-17 11:01 - 2021-12-13 15:26 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-781171050-1149277943-1776734086-1001
2023-12-15 16:22 - 2022-01-05 15:28 - 000000000 ____D C:\Program Files (x86)\SSDFresh
2023-12-15 16:22 - 2021-10-17 09:56 - 000000000 ____D C:\Windows\system32\Tasks\Abelssoft
2023-12-15 11:47 - 2022-09-17 13:25 - 000000000 ____D C:\Users\Jean Jacques\AppData\Roaming\XYplorer
2023-12-14 17:17 - 2021-08-19 16:24 - 001096640 _____ C:\Windows\system32\FNTCACHE.DAT
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2023-12-14 17:17 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2023-12-14 12:07 - 2021-08-19 16:28 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-12-08 15:45 - 2022-01-05 15:28 - 000000000 ____D C:\Users\Jean Jacques\AppData\Local\Abelssoft
2023-12-08 15:31 - 2021-08-22 10:01 - 000003884 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2023-12-08 15:31 - 2021-08-22 10:01 - 000003760 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2023-12-07 09:30 - 2021-08-19 17:52 - 000003612 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA
2023-12-07 09:30 - 2021-08-19 17:52 - 000003488 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore
2023-12-05 11:42 - 2021-08-20 15:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2023-12-05 11:32 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
==================== Fichiers à la racine de certains dossiers ========
2021-10-28 20:28 - 2021-10-28 20:29 - 001269816 _____ () C:\Users\Jean Jacques\acdseeultimate.exe
2022-06-24 16:30 - 2017-11-19 12:51 - 000004286 _____ () C:\Program Files (x86)\FalcoGo.ico
2022-06-24 16:30 - 2017-11-19 12:53 - 000000044 _____ () C:\Program Files (x86)\FalcoGo.url
2022-06-24 16:30 - 2016-01-05 12:37 - 000004286 _____ () C:\Program Files (x86)\FalconLine.ico
2022-06-24 16:30 - 2016-01-05 12:25 - 000000047 _____ () C:\Program Files (x86)\FalconLine.url
2022-06-24 16:30 - 2016-12-21 00:39 - 000004286 _____ () C:\Program Files (x86)\FalcoSpace.ico
2022-06-24 16:30 - 2016-12-21 00:36 - 000000047 _____ () C:\Program Files (x86)\FalcoSpace.url
2021-08-28 17:14 - 2021-09-19 16:46 - 000000338 _____ () C:\Users\Jean Jacques\AppData\Roaming\.openyahtzee
2023-02-21 10:51 - 2023-02-21 11:03 - 000091466 _____ () C:\Users\Jean Jacques\AppData\Local\23221-105116-CLCSIWriter.txt
2023-01-18 14:43 - 2023-01-18 14:46 - 000000128 _____ () C:\Users\Jean Jacques\AppData\Local\PUTTY.RND
2021-08-21 20:19 - 2021-08-21 20:19 - 000007597 _____ () C:\Users\Jean Jacques\AppData\Local\Resmon.ResmonCfg
2022-04-16 16:49 - 2022-04-16 16:49 - 000000448 _____ () C:\Users\Jean Jacques\AppData\Local\rtb.log
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================